I am being asked to produce an Access Log from our iSeries Server

2480 pts.
Tags:
AS/400
Audit Journal
i5
iSeries
iSeries Access
iSeries security
I am being asked to produce an Access Log from our iSeries Server. It doesn't appear that the Audit Journal will identify who has signed on and when. Can someone point me in the right direction. Thank You, Bill

Answer Wiki

Thanks. We'll let you know when a new response is added.

Hi Bill,

You could try using the DSPLOG information, if you only select for message Id CPF1124, it will show you when every job starts.

DSPLOG MSGID(CPF1124)

Hope this helps.

Regards,

Martin Gilbert.

Thanks, Martin. For lack of anything more user friendly, I’ve created a CL Program that is going to run nightly. It does a Display User Profile to an Outfile. I am then accumulating the records where the Previous Sign On Date is equal to Today’s Date. This will allow me to create a daily log as well as report when Users have signed on Historically.

Does anyone have any other options ?

Thanks,
Bill

=================================================================

The system audit journal is the only reliable source. The journal will log T/JS entries for each Job Start that occurs (assuming that you have appropriate auditing enabled on your system.) Jobs with names matching device names will be for jobs starting from those devices (unless someone submits a batch job with one of those names, but other attributes such as ‘B’atch or ‘I’nteractive are available.)

The user profile Previous Sign On Date only logs telnet interactive signons. It does not log ftp, ODBC nor others. But the audit journal will log those under appropriate entry codes. E.g., a T/PS entry will be logged when a FTP job does a profile switch to the profile making the request.

An “Access Log” should log “accesses”. You’ll need to learn how to determine all the kinds of accesses allowed by your system.

Tom

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Gilly400
    Hi Bill, Do you have the possibility to change the initial program for the users? If every user has the same initial program, you could add an extra call to a program to write log information for you. Regards, Martin.
    23,730 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following